[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fqECZRulPjq-Tbe5uwhozqH4tHbGSOUGLCAWPQZrM0t4":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":15,"tags":18,"homepage":24,"download_link":25,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":143,"fingerprints":230},"primary-blog-switcher-for-superadmins","Primary Blog Switcher for SuperAdmins","4.6","David Sader","https:\u002F\u002Fprofiles.wordpress.org\u002Fdsader\u002F","\u003Cp>WordPress \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FCreate_A_Network\" rel=\"nofollow ugc\">Multisite\u003C\u002Fa> network plugin to allow Network Admin to set the “Primary Blog” (aka Primary Site) of a user while editing a user’s profile.\u003C\u002Fp>\n\u003Cp>Well, for whatever reasons (usually users fiddling around – I use WP multisite in a school with students grades 4-12), users aren’t attached(or become unattached) to the correct “Primary Blog”.\u003C\u002Fp>\n\u003Cp>This isn’t a deal breaker, but annoying when they login and are redirected to a blog that is not their expected primary. It also is annoying when I use other plugins to list user primary blog for display in a member directory, member profiles, etc.\u003C\u002Fp>\n\u003Cp>Telling users to reset their primary blog at their own Dashboard->My Blogs is a fix, but the SuperAdmin(Teacher in my case) can head off the confusion first with this plugin. There is no other way(AFAIK) for the Network Admin to set the “Primary Blog” of a user while editing their profile.\u003C\u002Fp>\n\u003Cp>Now, I can quickly scan the Network Admin list of users and edit profiles and set primary blogs of any user correctly.\u003C\u002Fp>\n\u003Cp>I can also use my \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fmenus\u002F\" rel=\"ugc\">Menus plugin\u003C\u002Fa> to toggle the My Sites menu item so users can no longer fiddle with the Primary Site switcher at all. Problem solved.\u003C\u002Fp>\n\u003Ch3>Notes\u003C\u002Fh3>\n\u003Cp>The original code for the Primary Site switcher is in wp-admin-includes\u002Fms.php. I’ve basically copied that, but changed \u003Ccode>get_current_user_id()\u003C\u002Fcode> to \u003Ccode>$edit_user = (int) $_GET['user_id'];\u003C\u002Fcode> and added it to the “edit_user_profile” hook.\u003C\u002Fp>\n\u003Cp>The plugin can be used to add users to a “Special Blog” by uncomment(remove the \u002F* and *\u002F) this section in the plugin code and change the $special_blog_id:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003Coptgroup label=\"Other Blogs\">\u003C\u002Foptgroup>\n\u003Coptgroup label=\"Special Blog\">\n\u003C?php $special_blog_id = '63'; \u002F\u002F\n$special_blog = get_blog_details( $special_blog_id ); ?>\n\u003Coption value='\u003C?php echo $special_blog_id ?>'>http:\u002F\u002F\u003C?php echo $special_blog->domain.$special_blog->path ?>\u003C\u002Foption>\n\u003C\u002Foptgroup>\n\u003C\u002Fcode>\u003C\u002Fpre>\n","WordPress multisite network plugin to allow Network Admin to set the \"Primary Blog\" (aka Primary Site) of a user while editing a profile.",10,3161,100,2,"","4.6.30","3.0",[19,20,21,22,23],"multisite","network","primary-blog","primary-site","profile","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fprimary-blog-switcher-for-superadmins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fprimary-blog-switcher-for-superadmins.zip",0,null,"2026-03-15T10:48:56.248Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"dsader",4,140,89,30,86,"2026-04-04T19:57:05.860Z",[39,61,82,99,122],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":36,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":58,"download_link":59,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":60},"simple-social-icons","Simple Social Icons","4.0.0","OsomPress","https:\u002F\u002Fprofiles.wordpress.org\u002Fosompress\u002F","\u003Cp>Simple Social Icons is an easy to use, customizable way to display icons that link visitors to your various social profiles. You can choose which profiles to link to, customize the color and size of your icons, and align them to the left, center, or right.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Two Ways to Use Social Icons:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>\u003Cstrong>Widget (WordPress 4.0+):\u003C\u002Fstrong> The traditional widget works on all supported WordPress versions. Simply drag the “Simple Social Icons” widget into any widget area and configure it from the widget form. All available icons are accessible through the widget.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Block Variations (WordPress 6.9+):\u003C\u002Fstrong> On WordPress 6.9+, this plugin extends the core Social Icons block with additional icon variations. These icons automatically appear when adding a Social Icons block in the block editor. Block variations only add icons that are not already available in WordPress core, so you get the best of both worlds: core icons plus these additional options.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>Important:\u003C\u002Fstrong> If you’re currently using the widget, nothing changes for you. The widget continues to work exactly as before on all WordPress versions. Block variations are an additional feature that only activates on WordPress 6.9+ and doesn’t affect existing widget functionality.\u003C\u002Fp>\n\u003Cp>*Note: The simple_social_default_glyphs filter has been deprecated from this plugin.\u003C\u002Fp>\n","This plugin provides two ways to display social icons: a traditional widget (available on all WordPress versions) and block variations for the core So …",100000,3241683,91,"2025-12-16T12:19:00.000Z","6.9.4","4.0","7.4",[55,56,57],"social-media","social-networking","social-profiles","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsimple-social-icons\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-social-icons.4.0.0.zip","2026-03-15T15:16:48.613Z",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":71,"num_ratings":72,"last_updated":73,"tested_up_to":74,"requires_at_least":75,"requires_php":15,"tags":76,"homepage":79,"download_link":80,"security_score":81,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":60},"lightweight-social-icons","Lightweight Social Icons","1.1","Tom","https:\u002F\u002Fprofiles.wordpress.org\u002Fedge22\u002F","\u003Cp>Lightweight Social Icons is an easy to use, lightweight social icon widget which lets you display your favorite social profile icons.\u003C\u002Fp>\n\u003Cp>The icons use an icon font, meaning you can choose the size, border radius (roundess), color and hover color of your icons!\u003C\u002Fp>\n\u003Cp>Check out GeneratePress, our awesome WordPress theme! (https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fgeneratepress)\u003C\u002Fp>\n\u003Ch4>Features include:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Choose your own order\u003C\u002Fli>\n\u003Cli>Icon size\u003C\u002Fli>\n\u003Cli>Border radius\u003C\u002Fli>\n\u003Cli>Background color\u003C\u002Fli>\n\u003Cli>Text\u002Ficon color\u003C\u002Fli>\n\u003Cli>Background color on hover\u003C\u002Fli>\n\u003Cli>Text\u002Ficon color on hover\u003C\u002Fli>\n\u003Cli>Open links in new window\u003C\u002Fli>\n\u003Cli>Enable\u002Fdisable tooltips\u003C\u002Fli>\n\u003Cli>Alignment of icons\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Included icons:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Facebook\u003C\u002Fli>\n\u003Cli>Twitter\u003C\u002Fli>\n\u003Cli>Google+\u003C\u002Fli>\n\u003Cli>Instagram\u003C\u002Fli>\n\u003Cli>LinkedIn\u003C\u002Fli>\n\u003Cli>Pinterest\u003C\u002Fli>\n\u003Cli>Flickr\u003C\u002Fli>\n\u003Cli>Email\u003C\u002Fli>\n\u003Cli>RSS\u003C\u002Fli>\n\u003Cli>Stumbleupon\u003C\u002Fli>\n\u003Cli>Tumblr\u003C\u002Fli>\n\u003Cli>Vimeo\u003C\u002Fli>\n\u003Cli>YouTube\u003C\u002Fli>\n\u003Cli>Github\u003C\u002Fli>\n\u003Cli>Soundcloud\u003C\u002Fli>\n\u003Cli>DeviantArt\u003C\u002Fli>\n\u003Cli>Phone\u003C\u002Fli>\n\u003Cli>Skype\u003C\u002Fli>\n\u003Cli>Dribbble\u003C\u002Fli>\n\u003Cli>Foursquare\u003C\u002Fli>\n\u003Cli>Reddit\u003C\u002Fli>\n\u003Cli>Spotify\u003C\u002Fli>\n\u003Cli>Digg\u003C\u002Fli>\n\u003Cli>Vine\u003C\u002Fli>\n\u003Cli>Codepen\u003C\u002Fli>\n\u003Cli>Delicious\u003C\u002Fli>\n\u003Cli>JSFiddle\u003C\u002Fli>\n\u003Cli>Stack Overflow\u003C\u002Fli>\n\u003Cli>WordPress\u003C\u002Fli>\n\u003Cli>Dropbox\u003C\u002Fli>\n\u003Cli>Steam\u003C\u002Fli>\n\u003Cli>Behance\u003C\u002Fli>\n\u003Cli>iTunes\u003C\u002Fli>\n\u003Cli>Yelp\u003C\u002Fli>\n\u003Cli>500px\u003C\u002Fli>\n\u003Cli>AngelList\u003C\u002Fli>\n\u003Cli>Blog Lovin’\u003C\u002Fli>\n\u003Cli>Paper Plane (Newsletter)\u003C\u002Fli>\n\u003Cli>VK\u003C\u002Fli>\n\u003Cli>Xing\u003C\u002Fli>\n\u003Cli>Bandcamp\u003C\u002Fli>\n\u003Cli>BitBucket\u003C\u002Fli>\n\u003Cli>Snapchat\u003C\u002Fli>\n\u003Cli>Trip Advisor\u003C\u002Fli>\n\u003Cli>Houzz\u003C\u002Fli>\n\u003Cli>Mixcloud\u003C\u002Fli>\n\u003Cli>Last.fm\u003C\u002Fli>\n\u003C\u002Ful>\n","Looking to add simple social icons to your widget areas? Choose the size and color of your icons, and then choose from 47 different social profiles.",30000,464772,94,63,"2020-03-18T17:14:00.000Z","5.4.19","4.5",[77,78,55,56,57],"social-icon-widget","social-icons","http:\u002F\u002Fgeneratepress.com\u002Flightweight-social-icons","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flightweight-social-icons.1.1.zip",85,{"slug":83,"name":84,"version":85,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":90,"downloaded":91,"rating":36,"num_ratings":32,"last_updated":92,"tested_up_to":93,"requires_at_least":94,"requires_php":15,"tags":95,"homepage":97,"download_link":98,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":60},"socials-ignited","Socials Ignited","2.0.0","Anastis Sourgoutsidis","https:\u002F\u002Fprofiles.wordpress.org\u002Fanastis\u002F","\u003Cp>Brought to you by the \u003Ca href=\"https:\u002F\u002Fwww.cssigniter.com\u002F\" title=\"Premium WordPress Themes\" rel=\"nofollow ugc\">CSSIgniter\u003C\u002Fa> folks, the Socials Ignited\u003Cbr \u002F>\nplugin allows you to display and link icons on your website of more than 50 social networks, just by dragging a widget.\u003C\u002Fp>\n\u003Cp>The plugin supports all FontAwesome 5.x free icons providing you with hundreds of options to display your social profiles, contact methods and more.\u003C\u002Fp>\n\u003Cp>A preconfigured list of the most popular social networks can be found under Customize -> Socials Ignited for you to fill in. Alternatively you can create custom sets of icons right on the widget.\u003C\u002Fp>\n","The Socials Ignited plugin gives you a widget, allowing you to display and link icons on your website of more than 50 social networks.",2000,84550,"2025-04-25T13:09:00.000Z","6.8.5","5.2",[78,55,56,57,96],"social-widgets","https:\u002F\u002Fwww.cssigniter.com\u002Fsocials-ignited\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsocials-ignited.2.0.0.zip",{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":90,"downloaded":107,"rating":108,"num_ratings":109,"last_updated":110,"tested_up_to":111,"requires_at_least":112,"requires_php":15,"tags":113,"homepage":117,"download_link":118,"security_score":119,"vuln_count":120,"unpatched_count":26,"last_vuln_date":121,"fetched_at":60},"unconfirmed","Unconfirmed","1.3.7","Boone Gorges","https:\u002F\u002Fprofiles.wordpress.org\u002Fboonebgorges\u002F","\u003Cp>If you run a WordPress or BuddyPress installation, you probably know that some of the biggest administrative headaches come from the activation process. Activation emails may be caught by spam filters, deleted unwillingly, or simply not understood. Yet WordPress itself has no UI for viewing and managing unactivated members.\u003C\u002Fp>\n\u003Cp>Unconfirmed creates a Dashboard panel under the Users menu (Network Admin > Users on Multisite) that shows a list of unactivated user registrations. For each registration, you have the option of resending the original activation email, or manually activating the user.\u003C\u002Fp>\n\u003Cp>Note that the plugin works for the following configurations:\u003Cbr \u002F>\n1. Multisite, with or without BuddyPress\u003Cbr \u002F>\n2. Single site, with BuddyPress used for user registration\u003C\u002Fp>\n\u003Cp>There is currently no support for single-site WP registration without BuddyPress.\u003C\u002Fp>\n","Allows WordPress admins to manage unactivated users, by activating them manually, deleting their pending registrations, or resending the activation em …",246166,90,47,"2023-12-04T19:58:00.000Z","6.4.8","3.1",[114,115,116,19,20],"activate","activation","email","http:\u002F\u002Fgithub.com\u002Fboonebgorges\u002Funconfirmed","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Funconfirmed.1.3.7.zip",84,1,"2014-04-11 00:00:00",{"slug":123,"name":124,"version":125,"author":126,"author_profile":127,"description":128,"short_description":129,"active_installs":130,"downloaded":131,"rating":132,"num_ratings":133,"last_updated":134,"tested_up_to":74,"requires_at_least":135,"requires_php":15,"tags":136,"homepage":141,"download_link":142,"security_score":81,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":60},"buddypress-edit-activity","BuddyPress Edit Activity","1.1.1","Syed Balkhi","https:\u002F\u002Fprofiles.wordpress.org\u002Fsmub\u002F","\u003Cp>Let your BuddyPress members edit their activity posts and replies on the front-end of the site. You can even set a time limit for how long activity posts should remain editable.\u003C\u002Fp>\n\u003Cp>Just activate the plugin, and every activity post and reply will become editable, styled automatically by BuddyPress to fit with your theme.\u003C\u002Fp>\n","BuddyPress Edit Activity allows your members to edit their activity posts on the front-end of your BuddyPress-powered site.",900,75058,92,17,"2020-04-23T13:56:00.000Z","3.8",[137,138,139,140,56],"activity","buddypress","messaging","profiles","https:\u002F\u002Fwww.buddyboss.com\u002Fproduct\u002Fbuddypress-edit-activity\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddypress-edit-activity.1.1.1.zip",{"attackSurface":144,"codeSignals":164,"taintFlows":189,"riskAssessment":217,"analyzedAt":229},{"hooks":145,"ajaxHandlers":160,"restRoutes":161,"shortcodes":162,"cronEvents":163,"entryPointCount":26,"unprotectedCount":26},[146,152,156],{"type":147,"name":148,"callback":149,"file":150,"line":151},"action","edit_user_profile","choose_primary_blog","ds_wp3_primary_blog_switcher.php",25,{"type":147,"name":153,"callback":154,"file":150,"line":155},"edit_user_profile_update","profile_update_primary_blog",26,{"type":147,"name":157,"callback":158,"file":150,"line":159},"mu_rightnow_end","admin_notices",27,[],[],[],[],{"dangerousFunctions":165,"sqlUsage":166,"outputEscaping":168,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":26,"bundledLibraries":188},[],{"prepared":120,"raw":26,"locations":167},[],{"escaped":11,"rawEcho":169,"locations":170},9,[171,174,176,178,179,180,182,184,186],{"file":150,"line":172,"context":173},52,"raw output",{"file":150,"line":175,"context":173},54,{"file":150,"line":177,"context":173},61,{"file":150,"line":72,"context":173},{"file":150,"line":108,"context":173},{"file":150,"line":181,"context":173},104,{"file":150,"line":183,"context":173},117,{"file":150,"line":185,"context":173},127,{"file":150,"line":187,"context":173},153,[],[190,208],{"entryPoint":191,"graph":192,"unsanitizedCount":120,"severity":207},"choose_primary_blog (ds_wp3_primary_blog_switcher.php:69)",{"nodes":193,"edges":204},[194,199],{"id":195,"type":196,"label":197,"file":150,"line":198},"n0","source","$_GET",70,{"id":200,"type":201,"label":202,"file":150,"line":187,"wp_function":203},"n1","sink","echo() [XSS]","echo",[205],{"from":195,"to":200,"sanitized":206},false,"medium",{"entryPoint":209,"graph":210,"unsanitizedCount":120,"severity":216},"\u003Cds_wp3_primary_blog_switcher> (ds_wp3_primary_blog_switcher.php:0)",{"nodes":211,"edges":214},[212,213],{"id":195,"type":196,"label":197,"file":150,"line":198},{"id":200,"type":201,"label":202,"file":150,"line":187,"wp_function":203},[215],{"from":195,"to":200,"sanitized":206},"low",{"summary":218,"deductions":219},"The primary-blog-switcher-for-superadmins plugin v4.6 exhibits a mixed security posture. On the positive side, it has no known historical vulnerabilities (CVEs) and no reported bundled libraries, which often introduce their own security risks. The plugin also utilizes prepared statements for its single SQL query, which is a strong security practice.\n\nHowever, the static analysis reveals a concerning lack of security controls. The absence of any nonce checks or capability checks across all entry points is a significant weakness. While the attack surface appears small with zero entry points detected, this can be misleading as the taint analysis shows two flows with unsanitized paths. This suggests that even with a limited entry point count, there's a potential for data manipulation or injection if these paths are ever reached through some indirect means or future code modifications. The moderate escaping rate (53%) for outputs also indicates a potential for cross-site scripting (XSS) vulnerabilities.\n\nIn conclusion, while the plugin benefits from a clean vulnerability history and good SQL practices, the lack of fundamental security checks like nonces and capability checks, combined with unsanitized taint flows and imperfect output escaping, presents a notable risk. Developers should prioritize implementing proper authentication and authorization for all potential entry points and thoroughly sanitize all output.",[220,222,224,226],{"reason":221,"points":11},"Missing Nonce Checks",{"reason":223,"points":11},"Missing Capability Checks",{"reason":225,"points":11},"Unsanitized Paths in Taint Flows",{"reason":227,"points":228},"Moderate Output Escaping (53%)",6,"2026-03-16T23:28:24.982Z",{"wat":231,"direct":236},{"assetPaths":232,"generatorPatterns":233,"scriptPaths":234,"versionParams":235},[],[],[],[],{"cssClasses":237,"htmlComments":239,"htmlAttributes":241,"restEndpoints":244,"jsGlobals":245,"shortcodeOutput":246},[238],"update-nag",[240],"special blog add $special_blog_id to add user to some, well, special blog.",[242,243],"name=\"primary_blog\"","selected=\"selected\"",[],[],[]]